Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/3a0b14-8d17-449d-aa56-f1071e8b80d6/1/BsZ8_8w6rjIHeGO-yM45Tiow_Vk.roa
File: BsZ8_8w6rjIHeGO-yM45Tiow_Vk.roa (raw, json)
Hash identifier: 91tXAJiq+nktQTy222sCsTyRDZgpqX5OGAHn4WgAQqQ=
Subject key identifier: 06:C6:7C:FF:CC:3A:AE:32:07:78:63:BE:C8:CE:39:4E:2A:30:FD:59
Certificate issuer: /CN=1b893c6209b7a8018776c5ccad30e240d2cf2d07
Certificate serial: 01E5197A
Authority key identifier: 1B:89:3C:62:09:B7:A8:01:87:76:C5:CC:AD:30:E2:40:D2:CF:2D:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G4k8Ygm3qAGHdsXMrTDiQNLPLQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/3a0b14-8d17-449d-aa56-f1071e8b80d6/1/BsZ8_8w6rjIHeGO-yM45Tiow_Vk.roa
Signing time: Mon 04 Apr 2022 10:44:35 +0000
ROA not before: Mon 04 Apr 2022 10:44:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 109.234.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31791482 (0x1e5197a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b893c6209b7a8018776c5ccad30e240d2cf2d07
Validity
Not Before: Apr 4 10:44:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06c67cffcc3aae32077863bec8ce394e2a30fd59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:35:aa:41:d5:02:40:4a:cf:75:f2:8c:23:36:
6c:b2:a5:3c:98:39:a6:6d:32:a8:98:47:02:0d:87:
04:d3:2d:af:fb:33:27:d6:ab:b6:f3:09:aa:df:ce:
19:0d:71:ed:2a:69:8e:17:b0:bb:e1:2c:0b:67:c0:
3c:43:98:5f:71:44:b8:7b:f0:9e:d9:b3:8d:2e:91:
fe:25:3b:09:1d:71:ab:f7:3b:c9:91:dd:42:7e:f6:
ec:8a:36:9b:69:99:62:d4:6b:7e:f9:d1:f8:3b:2f:
cb:f7:5d:fe:74:7e:d1:4d:bd:62:1c:78:21:b4:05:
36:5a:7f:82:89:07:c3:51:0a:55:61:e2:fd:76:45:
44:dc:27:7b:e3:cb:d3:2a:32:9c:88:a3:0f:42:0a:
00:20:2a:01:e5:64:f6:66:4d:79:bb:95:0f:55:57:
21:48:48:34:d1:d2:ac:58:62:38:ef:36:24:9c:fb:
bd:ce:b4:03:43:b0:00:dc:cf:6b:79:54:b7:84:7d:
1d:ca:ea:78:7b:52:01:f3:37:f2:c0:4d:da:8d:44:
3f:9b:30:2e:10:ca:8a:28:f0:08:ad:ff:37:f9:85:
c7:a6:8a:1a:ec:70:fd:84:13:5f:6b:56:19:a8:87:
45:31:f4:89:7e:fe:dd:2c:b6:75:48:6f:b0:6d:a0:
7e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C6:7C:FF:CC:3A:AE:32:07:78:63:BE:C8:CE:39:4E:2A:30:FD:59
X509v3 Authority Key Identifier:
keyid:1B:89:3C:62:09:B7:A8:01:87:76:C5:CC:AD:30:E2:40:D2:CF:2D:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G4k8Ygm3qAGHdsXMrTDiQNLPLQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3a0b14-8d17-449d-aa56-f1071e8b80d6/1/BsZ8_8w6rjIHeGO-yM45Tiow_Vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3a0b14-8d17-449d-aa56-f1071e8b80d6/1/G4k8Ygm3qAGHdsXMrTDiQNLPLQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.74.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:de:1b:1d:79:b7:f3:6d:16:96:fc:c7:32:87:5a:18:9f:2f:
de:07:13:91:2b:4f:a7:a2:01:c4:17:a0:a9:86:08:cb:59:a5:
38:f3:fe:4b:15:45:d8:39:15:a8:4c:64:0f:8b:7e:f6:58:f4:
12:83:dc:e9:d7:d3:cb:6a:4d:dd:97:8b:08:18:1d:0c:04:26:
16:2a:6d:db:83:8d:ea:73:6e:14:b3:00:6c:22:4b:03:d3:f5:
5a:d9:cb:eb:48:59:b9:11:67:1b:18:ed:40:9f:a8:25:a3:87:
60:64:03:30:3e:ee:cd:fa:bc:fc:a3:ae:aa:ef:71:0b:75:54:
f3:24:1b:4c:10:e8:28:44:52:e8:6a:b1:60:96:18:a2:17:b8:
da:8e:95:15:43:17:96:77:a3:60:51:ec:37:c1:32:d6:b2:8e:
08:7b:1b:b4:90:c9:d5:ae:49:71:e4:d7:86:41:a9:9e:b2:7a:
a7:d6:90:16:9e:6e:43:42:9e:c0:46:fe:78:18:cb:a8:88:59:
32:51:ee:e4:b0:b9:6e:4d:ed:ff:97:ee:cf:6e:e3:fa:dd:40:
f9:9f:72:e1:3d:8d:16:39:4b:de:5e:b8:66:62:b2:be:e1:0a:
16:72:0a:d3:f2:33:3b:28:26:65:ff:8c:1c:d5:fb:cf:0d:83:
d0:70:4f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:34 2023 by rpki-client on console-ams.rpki-client.org